)SrSSKJr SSKJr SSKJr SSKJr SSKJr SSK J r SSK J r SS K J r SS KJr S rS rS rSr\ R(\ R*"\ R,R.\ R,R05"SS\ R2555r\ R*"\ R,R65"SS\55rSSSS.r\\l\\lg)zB`gcloud access-context-manager perimeters dry-run update` command.)absolute_import)division)unicode_literals)util)zones)base) perimeters)policies)repeatedcTUR(a UR$UR$)z8Returns the base config to use for the update operation.)useExplicitDryRunSpecspecstatus) perimeters ?lib/surface/access_context_manager/perimeters/dry_run/update.py_GetBaseConfigrs!$$ >>   c^^[R"XU4Sj5nU(d U(dTnU$)zAReturns the repeated field value to use for the update operation.c>T=(d /$N)base_config_valuesr(_GetRepeatedFieldValue..'s7H7NB7Nr)r ParsePrimitiveArgs)args field_namerhas_specrepeated_fields ` r_GetRepeatedFieldValuer $s+..t/NP. .&N rch^/SQnUVs/sHo3U-PM nn[U4SjU55$s snf)N)remove_add_clear_c3F># UHnTRU5v M g7fr) IsSpecified).0argrs r $_IsFieldSpecified..8s 8isT  c " "is!)any)rrlist_command_prefixescommand list_argss ` r_IsFieldSpecifiedr/4s973HI3H#3H)I 8i 8 88Js/cJ[R"X5nU(dUcUnU$)zGReturns the ingress/egress field value to use for the update operation.)r "ParseUpdateDirectionalPoliciesArgs)rrrringress_egress_fields r_GetIngressEgressFieldValuer3;s/#FF  *2, rcF\rSrSrSrSr\S5r\S Sj5rSr Sr g) UpdatePerimeterDryRunL?Updates the dry-run mode configuration for a Service Perimeter.v1c,[RUSS9 g)Nr8versionr5 ArgsVersionedparsers rArgsUpdatePerimeterDryRun.ArgsRs'''=rc[R"US5 [R"X5 [R"U5 [R "USSSSS9 [R "USSSSS9 [R "USS S SS9 US :wa;UR S 5nURS SSS9 [R "USSSSS9 O[R"X5 URSSSS9 g)Nz to updatezService Perimeter resources ResourcesF) include_setzrestricted-serviceszRestricted Servicesz access-levelsz Access Levelv1alphaz>Arguments for configuring VPC accessible service restrictions.z --enable-vpc-accessible-services store_truezWhen specified restrict API calls within the Service Perimeter to the set of vpc allowed services. To disable use '--no-enable-vpc-accessible-services'.)actionhelpvpc-allowed-serviceszVPC Allowed Servicesz--asyncz^Return immediately, without waiting for the operation in progress to complete.) r AddResourceArg%AddUpdateDirectionalPoliciesGroupArgs AddEtagArgr AddPrimitiveArgsadd_argument_group add_argument'AddUpdateVpcAccessibleServicesGroupArgs)r?r; vpc_groups rr=#UpdatePerimeterDryRun.ArgsVersionedVsfk244VE&!         )++ JLi ,45     88  )*rcH[R"URS9n[R"URS9nUR R R5n[R"XA5 URU5n[U5n[SU5(a#[USURUR5nO URn[SU5(a#[USUR UR5nO UR n[SU5(a#[USUR"UR5n O UR"n UR$n U cUR'5n [SU5(a#[USU R(UR5n OUR$b U R(n OSn UR+S5(a UR,n OUR$b U R.n OSn Sn SnURS :Xa[0R2"US 5upU cSn O U (d/n [5US UR6UR5n[5US UR8UR5nUR;UUU UU U UU UUUR<S 9 $)Nr:rCrestricted_services access_levelsvpc_allowed_servicesrJenable_vpc_accessible_servicesFrFzvpc-accessible-serviceszingress-policieszegress-policies) rClevelsrUrWrXvpc_yaml_flag_usedvpc_accessible_services_configingress_policiesegress_policiesetag) zones_apiClient _API_VERSIONr GetMessagesCONCEPTSrParser ValidateAccessPolicyArgGetrr/r rCr restrictedServices accessLevelsvpcAccessibleServicesVpcAccessibleServicesallowedServicesr&rXenableRestrictionr $ParseUpdateVpcAccessibleServicesArgsr3ingressPoliciesegressPoliciesPatchDryRunConfigr^)selfrclientmessages perimeter_reforiginal_perimeter base_configupdated_resourcesupdated_restricted_servicesupdated_access_levelsbase_vpc_configupdated_vpc_servicesupdated_vpc_enabledr[rZupdated_ingressupdated_egresss rRunUpdatePerimeterDryRun.Runs   d&7&7 8F(9(9:HMM++113M $$]9M2 !34Kd++0  [22  2 24&//.55$: %{'E'E  2 2%4!%0$B$B!$//4 !9!9  2 24*66!77O 668o/663 &(G(G  2 24  * * 6,<<! 899 ??  * * 6+== %)" I%  9 9- 9$"! 1 ##00 O 1 ""00 N  # ##$71':-'E(& YY $  rrN)r8) __name__ __module__ __qualname____firstlineno____doc__ra staticmethodr@r=r__static_attributes__rrrr5r5Ls:H,>>-*-*^Srr5c,\rSrSrSrSr\S5rSrg)UpdatePerimeterDryRunAlphar7rFc,[RUSS9 g)NrFr:r<r>s rr@UpdatePerimeterDryRunAlpha.Argss'' 'BrrN) rrrrrrarr@rrrrrrsG,CCrrz>Update the dry-run mode configuration for a Service Perimeter.a`This command updates the dry-run mode configuration (`spec`) for a Service Perimeter. For Service Perimeters with an explicitly defined dry-run mode configuration (i.e. an explicit `spec`), this operation updates that configuration directly, ignoring enforcement mode configuration. Service Perimeters that do not have explict dry-run mode configuration will inherit the enforcement mode configuration in the dry-run mode. Therefore, this command effectively clones the enforcement mode configuration, then applies the update on that configuration, and uses that as the explicit dry-run mode configuration.a;To update the dry-run mode configuration for a Service Perimeter: $ {command} my-perimeter --add-resources="projects/123,projects/456" --remove-restricted-services="storage.googleapis.com" --add-access-levels="accessPolicies/123/accessLevels/a_level" --enable-vpc-accessible-services --clear-vpc-allowed-services)brief DESCRIPTIONEXAMPLESN)r __future__rrr+googlecloudsdk.api_lib.accesscontextmanagerrrr_googlecloudsdk.callioper/googlecloudsdk.command_lib.accesscontextmanagerr r $googlecloudsdk.command_lib.util.argsr rr r/r3UniverseCompatible ReleaseTracks ReleaseTrackBETAGA UpdateCommandr5ALPHAr detailed_helprrrrsI&'<J(FD9  9"D%%**D,=,=,@,@AKD..KBK\D%%++,C!6C-C I ' ( 0,9(&3#r